Introduction to encryption services, About encryption services, Transport-layer security – Google Message Encryption Administration Guide User Manual

Chapter 1

Introduction to Encryption Services

9

Introduction to Encryption Services

Chapter 1

About Encryption Services

Our encryption offerings deliver policy-based, practical solutions for email
encryption. Message Security has long supported the TLS (Transport-Layer
Security) protocol which has an inherent best-effort delivery mechanism from
gateway to gateway. The protocol easily converts to clear text if the recipient
gateway can not perform the TLS handshake.

However, with the heightened concerns around privacy and confidentiality, best
effort is often not good enough. The need to deliver secure email regardless of a
business partner’s capabilities calls for a solution that can handle both connection
and message security. Adding Message Encryption not only adds a management
layer to the TLS protocol that ensures a secure connection gateway-to-gateway

,

it also includes options for one-to-one message encryption when gateway TLS
capabilities are unknown or not present.

Several encryption components are available, including the following:

•

Policy Enforced TLS

•

Message Encryption, Portal Delivery or Inbox Delivery

Transport-Layer Security (TLS) is an encryption option, but is not part of the
Encryption Services suite. It is a basic form of encryption, and is included with the
email security service at no additional charge.

Transport-Layer Security

Transport-Layer Security is supported for all customers using the Email Security
Service for the Enterprise (it is not a separate Encryption Services product_.

Transport-Layer Security (TLS) is a standards-based protocol, based on Secure
Sockets Layer (SSL), that encrypts and delivers mail securely over the Internet.
TLS helps prevent eavesdropping and spoofing (message forgery) between mail
servers. TLS is rapidly being adopted as the industry standard for secure email.